Job Title:
Senior Cloud Security Specialist.
About the Job
We are seeking a Senior Cloud Security Specialist to join our team. As a seasoned security professional, you will play a key role in ensuring the security and integrity of our cloud infrastructure.
Responsibilities
You will be responsible for designing, implementing, and maintaining secure cloud architectures, as well as conducting regular security assessments and risk analyses.
Requirements
To be successful in this role, you will need:
• 5+ years of experience in application security, software engineering, or a related technical security role.
• Proficiency in at least one modern programming language (e.g., Java, C#, Python, JavaScript).
• Experience with security tools: SAST, DAST, SCA, IaC scanners, RASP.
• Strong knowledge of cloud infrastructure (AWS preferred), containers (Docker, Kubernetes), and CI/CD security.
• Familiarity with OWASP Top 10, ASVS, CVSS, MITRE ATT&CK, STRIDE, and software supply chain security.
• Deep understanding of API security protocols and secure service-to-service communication.
• Experience with secure artifact/package management and container registries.
• Ability to script or build internal tools to scale security practices.
• Hands-on experience with DevSecOps tools (GitHub Actions, Jenkins, GitLab CI, Terraform, etc.).
• Working knowledge of privacy and security regulations (GDPR, CCPA, HIPAA, PCI, SOC 2, ISO).
• Experience supporting audits, risk assessments, and policy development.
• Professional certifications (e.g., OSCP, CSSLP, CISSP, Security+).
• Contributions to open-source security projects or community involvement.
• Experience with policy-as-code tools (e.g., Open Policy Agent).
• Familiarity with secure runtimes (e.g., Firecracker), sidecars, or service meshes (e.g., Istio).